Job Purpose:
We are looking Identity and Access Lifecycle management SME, with 5+ years of relevant experience, capable of delivering enterprise solutions. Technically, you will be comfortable working using Agile methodologies in a Scrum/SAFe environment, and have proven experience designing, building and managing modern authentication capabilities for Cloud and self-hosted applications.
You will be working towards improving the maturity of IAM capabilities within GSK driving security and user experience.
Your responsibilities include:
Lead development and implementation of the SailPoint and other ILM toolset
The role involves contributing to the end-to-end identity and account lifecycle processes within GSK. The primary responsibilities include ensuring provisioning/ deprovisioning secure management of access to applications and resources both on-premise and in the cloud.
Supporting the product owner and architects in the entire lifecycle of user identities, from provisioning and modification to de-provisioning, ensuring accurate and timely access rights.
Ensure that GSK's regulatory requirements are met and continuously evolve and improve the underlying processes, strategies, and roadmap of capabilities and offerings by adopting new technologies where beneficial (such as automation, AI/ML, analytics, etc.).
Assist the IAM team and be POC for compliance authorities during test of control verification.
Act as the SME for IAM technologies, including but not limited to Identity Governance and Administration (IGA), Account and Access provisioning / deprovisioning, Access reviews, Identity & Access Reporting, Integration with HR source applications, Password management.
Ensure the security of IAM systems by implementing best practices and monitoring for vulnerabilities.
Work with IT teams and stakeholders to understand requirements and provide technical support.
Maintain comprehensive documentation of configurations, processes, and protocols.
Continuously evaluate and implement new IAM technologies and best practices to enhance security and efficiency
Overall 10 to 12 years of experience
Hands-on experience with IGA tools for role management, access reviews, and certification processes.
SailPoint Certified Implementation Engineer (CIE), SailPoint Certified IdentityIQ Engineer or SailPoint Certified IdentityNow Engineer
Proficiency in analysing large data sets, with SQL*Plus, SQL Developer, or TOAD
Hands on Implementation experience of Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and other access control models.
Hands on full life cycle implementation experience on SailPoint, Okta, RSA SecurID, ForgeRock, or other leading IAM platforms.
Understanding complex data requirements and translating them into database queries.
Evident problem-solving skills, the ability to debug and solve system errors.
In depth understanding of the various test phases, management of test traceability
Proficiency in GitHub and Azure DevOps.
Knowledge of application security best practices and tools.
Excellent verbal and written communication skills to effectively convey technical concepts to non-technical stakeholders.
A good knowledge of audit and regulatory compliance and ability to participate in discussion with compliance authorities.
Deep understanding of LDAP, Active Directory (AD), and their integration with IAM systems.
Familiarity with cloud IAM solutions and services offered by AWS, Google Cloud Platform (GCP), and Microsoft Azure.
Education: Bachelor’s degree in Computer Science, Information Technology, or a related field.
Soft Skills: Strong problem-solving abilities, excellent communication skills, and the ability to work collaboratively in a team environment
Certifications:
Microsoft Certified: Azure Solutions Architect Expert
SailPoint Certified IdentityIQ Architect
CCSP – Certified Cloud Security Professional / CISSP - Certified Information Systems Security Professional (nice to have)
Preferred Qualifications:
Proficiency in scripting languages such as PowerShell, Python, JavaScript, for automating IAM tasks and processes.
Knowledge of frameworks / libraries such as REACT and front-end technologies such as HTML, CSS and JavScript.
Familiarity with test automation tools such as Playwright and TorchBearer
Experience of building and deploying web applications through CI/CD pipelines using GitHub Actions or Azure DevOps.
Knowledge of deploying, managing and monitoring applications in a Cloud environment such as Microsoft Azure or Google Cloud.
Previously worked in a central IT team within a regulated environment such as the Pharmaceutical or Financial services
Inclusion & Diversity at GSK:
At GSK, we are dedicated to fostering an inclusive and diverse work environment. We believe that diversity in our workforce drives innovation and growth, and we are committed to providing equal opportunities for all employees and applicants. We strive to create an atmosphere where all individual’s unique perspectives and experiences are valued and respected. All qualified applicants will receive equal consideration for employment without regard to their sex or gender, caste, pregnancy, gender identity/expression, physical and/or mental disability, or any other protected characteristic as per applicable law.
Why GSK?
Uniting science, technology and talent to get ahead of disease together.
GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).
Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.
Important notice to Employment businesses/ Agencies
GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.
It has come to our attention that the names of GlaxoSmithKline or GSK or our group companies are being used in connection with bogus job advertisements or through unsolicited emails asking candidates to make some payments for recruitment opportunities and interview. Please be advised that such advertisements and emails are not connected with the GlaxoSmithKline group in any way.
GlaxoSmithKline does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection with recruitment with any GlaxoSmithKline (or GSK) group company at any worldwide location. Even if they claim that the money is refundable.
If you come across unsolicited email from email addresses not ending in gsk.com or job advertisements which state that you should contact an email address that does not end in “gsk.com”, you should disregard the same and inform us by emailing askus@gsk.com, so that we can confirm to you if the job is genuine.